eStudy Foto Forum: /home/estudydev/workspace/eStudy_svn/web/photogallery/admin/courseadmin.php Source File

00001 <?php
00002 /*
00003 ThWboard - PHP/MySQL Bulletin Board System
00004 ==============================================
00005 (c) 2000, 2001 by
00006 Paul Baecher         <paul@thewall.de>
00007 Felix Gonschorek   <funner@thewall.de>
00008 
00009 download the latest version:
00010 http://www.thwboard.de
00011 
00012 This  program is  free  software;  you can
00013 redistribute it and/or modify it under the
00014 terms of the GNU General Public License as
00015 published by the Free Software Foundation;
00016 either  version 2 of  the License,  or (at
00017 your option) any later version.
00018 
00019 ==============================================
00020 
00021 */
00022 /*--------------------------------------------------------------------------+
00023 This file is part of eStudy.
00024 photogallery/admin/courseadmin.php
00025 - Modulgruppe:  Photogallery
00026 - Beschreibung: Kurseinstellungen und Rechte bearbeiten
00027 - Version:      01/07/2006
00028 - Autor(en):    Thomas Loreit <smg@newtron-game.com>
00029 +---------------------------------------------------------------------------+
00030 This program is free software; you can redistribute it and/or
00031 modify it under the terms of the GNU General Public License
00032 as published by the Free Software Foundation; either version 2
00033 of the License, or any later version.
00034 +---------------------------------------------------------------------------+
00035 This program is distributed in the hope that it will be useful,
00036 but WITHOUT ANY WARRANTY; without even the implied warranty of
00037 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
00038 GNU General Public License for more details.
00039 You should have received a copy of the GNU General Public License
00040 along with this program; if not, write to the Free Software
00041 Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
00042 +--------------------------------------------------------------------------*/
00049 define("PATH_TO_ROOT", "../../");
00050 // FH: Initialisierungsdatei (Einstellungen, Einbindung von Klassen, Session-Start)
00051 require_once (PATH_TO_ROOT."common/init.inc.php");
00052 if (isset($_POST['Cancel'])) {
00053     header("Location: ".$_SERVER['PHP_SELF']);
00054     exit;
00055 }
00056 // FH: Ausgabe des HTML-Kopfes und der Menues
00057 require_once (PATH_TO_ROOT."common/header.inc.php");
00058 include_once ('./classes/class.adminfunctions.inc.php');
00059 include_once "../classes/class.photofunctions.inc.php";
00060 include_once ('./classes/class.gallerysettings.inc.php');
00061 include_once "../header.inc.php";
00062 if ($_SESSION['usergroup'] == ADMIN || $_SESSION['usergroup'] == DOZENT) {
00063     /* ----------------    Input Annahme     ------------------------------*/
00064     if (isset($_POST['updateglobalrights'])) {
00065         //die globalen rechte sollen gespeichert werden
00066         $safe_upload = (int)isset($_POST['global_upload']);
00067         $safe_edit = (int)isset($_POST['global_edit']);
00068         $safe_remove = (int)isset($_POST['global_remove']);
00069         $db->query("DELETE FROM photogallery_rights WHERE course_id=".Data::toMysql($_SESSION['course']) ." AND album_id='0' AND usr_id='0' LIMIT 1");
00070         $db->query("INSERT INTO photogallery_rights (course_id,album_id,usr_id,upload,edit,remove) VALUES (".Data::toMysql($_SESSION['course']) .",0,0,$safe_upload,$safe_edit,$safe_remove)");
00071     } else if (isset($_POST['addrights'])) {
00072         //ein neues recht für einen student wurde hinzugefügt
00073         if ($_POST['added_id']) {
00074             $safeid = Data::toMysql($_POST['added_id']);
00075             $safeupload = (int)isset($_POST['added_upload']);
00076             $safeedit = (int)isset($_POST['added_edit']);
00077             $safedelete = (int)isset($_POST['added_remove']);
00078             //erst checken, ob der student schon hinzugefügt wurde
00079             $dbresult = $db->get_row("SELECT COUNT(*) AS count FROM photogallery_rights WHERE course_id=".$_SESSION['course']." AND album_id=0 AND usr_id=$safeid");
00080             if ($dbresult->count == 0) $db->query("INSERT INTO photogallery_rights (course_id,album_id,usr_id,upload,edit,remove) VALUES($_SESSION[course],0,$safeid,$safeupload,$safeedit,$safedelete)");
00081         }
00082     } else if (isset($_GET['removeright']) && $_GET['removeright'] == 1 && $_GET['rightid']) {
00083         //rechte eines studenten wurden gelöscht
00084         $safeid = Data::toMysql($_GET['rightid']);
00085         $db->query("DELETE FROM photogallery_rights WHERE course_id=".$_SESSION['course']." AND album_id=0 AND usr_id=$safeid");
00086     } else if (isset($_POST['updaterights'])) {
00087         //die spezialrechte der studenten haben sich geändert
00088         $dbresult = $db->get_results("SELECT usr_id FROM photogallery_rights WHERE course_id=".$_SESSION['course']." AND album_id=0");
00089         if ($dbresult) {
00090             foreach($dbresult as $dbright) {
00091                 $usr_id = $dbright->usr_id;
00092                 if ($usr_id != 0) {
00093                     $update_upload = (int)isset($_POST["change_{$usr_id}_upload"]);
00094                     $update_edit = (int)isset($_POST["change_{$usr_id}_edit"]);
00095                     $update_remove = (int)isset($_POST["change_{$usr_id}_remove"]);
00096                     $db->query("UPDATE photogallery_rights SET upload=$update_upload, edit=$update_edit, remove=$update_remove WHERE course_id=".$_SESSION['course']." AND album_id=0 AND usr_id=$usr_id LIMIT 1");
00097                 }
00098             }
00099         }
00100     } else if (isset($_POST['storesettings'])) {
00101     }
00102     /* ----------------    Form Ausgabe     ------------------------------*/
00103     $globalrights = $db->get_row("SELECT * FROM photogallery_rights WHERE course_id=".Data::toMysql($_SESSION['course']) ." AND album_id='0' AND usr_id='0' LIMIT 1");
00104     //Kursnamen auslesen (sollte vielleicht schon in der Session stehen)
00105     if ($_SESSION['course'] == 0) $coursename = 'Foyer';
00106     else $coursename = $db->get_var('SELECT ShortName FROM courses WHERE ID='.Data::toMysql($_SESSION['course']) ." LIMIT 1");
00107     /* ----------------    Allgemeine Einstellungen     ------------------------------*/
00108     writeContentHeader("Einstellungen f&uuml;r den Kurs: $coursename");
00109     $photosettings->ProcessForm(); //form ausgeben und evtl. daten auswerten
00110     include_once "../footer.inc.php";
00111     /* ----------------    Allgemeine Rechte     ------------------------------*/
00112     writeContentHeader("Rechte f&uuml;r alle Studenten");
00113     print '<form method="post" action="'.PATH_TO_ROOT.SCRIPT_NAME.'">
00114                 <table width="100%" cellspacing="2" cellpadding="3">
00115 
00116                 <tr>
00117                         <td class="tableCell" style="width:50%;text-align:right;"> Kann neues Album erstellen</td>
00118                         <td class="tableCell"> <p class="pForm"><input type="checkbox" name="global_upload" '.(!isset($globalrights->upload) || $globalrights->upload == '1' ? "checked='checked'" : "") .'/></p> </td>
00119                 </tr>           
00120         
00121                 <tr>
00122                         <td class="tableCell" style="width:50%;text-align:right;"> Kann eigene Alben editieren </td>
00123                         <td class="tableCell"> <p class="pForm"><input type="checkbox" name="global_edit" '.(!isset($globalrights->edit) || $globalrights->edit == 1 ? "checked='checked'" : "") .'/></p> </td>
00124                 </tr>
00125                 
00126                 <tr>
00127                         <td class="tableCell" style="width:50%;text-align:right;"> Kann eigene Alben l&ouml;schen </td>
00128                         <td class="tableCell"> <p class="pForm"><input type="checkbox" name="global_remove" '.(!isset($globalrights->remove) || $globalrights->remove == 1 ? "checked='checked'" : "") .'/></p> </td>
00129                 </tr>
00130                 
00131                 
00132                 
00133                 
00134         <tr class="tableCellDark">
00135                 <td colspan="2" align="center">';
00136     print '
00137                 <p class="pForm"><input type="submit" name="updateglobalrights" value="Speichern"/></p><br/><br/>
00138                 </td>
00139        </tr></table>';
00140     /* ----------------    Spezialrechte     ------------------------------*/
00141     echo "<table class='contentTable'>";
00142     Output::echoTableHead("Spezielle Studentenrechte", 5);
00143     echo '<tr><td colspan="5" align="center" class="tableCellDark"> <p>Hier k&ouml;nnen sie spezielle Rechte f&uuml;r einzelne Studenten innerhalb dieses Kurses vergeben.</p></td></tr>';
00144     echo '<tr><td class="tableCellHead" style="text-align:center;">Name</td>';
00145     echo '<td class="tableCellHead" style="text-align:center;"><span title="Dieser Student kann ein neues Album anlegen">Erstellen</span></td>';
00146     echo '<td class="tableCellHead" style="text-align:center;"><span title="Dieser Student kann die Eigenschaften seiner Alben editieren">Editieren</span></td>';
00147     echo '<td class="tableCellHead" style="text-align:center;"><span title="Dieser Student kann seine Alben l&ouml;schen">L&ouml;schen</span></td>';
00148     echo '<td class="tableCellHead"></td></tr>';
00149     //aktuelle liste ausgeben
00150     $dbresult = $db->get_results("SELECT * FROM user RIGHT JOIN photogallery_rights ON user.ID=photogallery_rights.usr_id WHERE course_id=".$_SESSION['course']." AND album_id=0 AND usr_id<>0 ");
00151     if ($dbresult) {
00152         foreach($dbresult as $user) {
00153             echo "<tr><td class='tableCell'>{$user->Nachname}, {$user->Vorname}</td>";
00154             echoGalleryRightsSelectors("change_$user->ID", $user->upload == 1, $user->edit == 1, $user->remove);
00155             echo "<td class='tableCell' style='text-align:center;'><a href='".PATH_TO_ROOT.SCRIPT_NAME."?removeright=1&amp;rightid=$user->ID' title='Spezielle Rechte dieses Studenten entfernen'>".Output::getIcon('icon_delete', 'Spezielle Rechte dieses Studenten entfernen') ."</a></td>";
00156             echo "</tr>";
00157         }
00158     }
00159     //form ausgeben um noch einen student hinzuzufügen
00160     echo "<tr><td class='tableCell' style='width:40%'><select name='added_id' style='width:100%'>";
00161     if (!echoRightsUserlist("AND user.ID NOT IN( SELECT usr_id FROM photogallery_rights WHERE course_id=".$_SESSION['course']." AND album_id=0)")) {
00162         echo "<option style='font-style:italic;'>keine weiteren Studenten im Kurs</option>";
00163         echo "</select></td>";
00164         echoGalleryRightsSelectors("added", false, false, false);
00165         echo "<td class='tableCell' style='width:1%'><input type='submit' name='add_rights' value='Hinzuf&uuml;gen' disabled='disabled'/></td></tr>";
00166     } else {
00167         echo "</select></td>";
00168         echoGalleryRightsSelectors("added", false, false, false);
00169         echo "<td class='tableCell' style='width:1%'><input type='submit' name='addrights' value='Hinzuf&uuml;gen'/></td></tr>";
00170     }
00171     echo "<tr><td class='tableCellDark' colspan='5' style='text-align:center;'><input type='submit' name='updaterights' value='Rechte aktualisieren'/></td></tr>";
00172     echo "</table></form>";
00173     include_once "../footer.inc.php";
00174 } else {
00175     echo "<div class='error'>Ihnen fehlen die Rechte um diese Seite aufzurufen!</div>";
00176 }
00177 // FH: HTML-Fuss und unteres Menue
00178 require_once (PATH_TO_ROOT."common/footer.inc.php");
00179 ?>